Welcome to Thunderdome

omg no one ever saw this coming

tead, it appeared the attacker had logged into individual customers’ accounts on 23andMe by re-using credentials found in databases for hacked accounts of other services on the internet.

MFA all the things. I wonder if 23andme even allows MFA.

I wonder why they didn't notice a million logins from the same place? (assuming they didn't randomize ips)

Identity management firm Okta.

I also just learned that CNN has put up a paywall.

Leisher wrote: ↑Wed Nov 29, 2023 1:34 pm Identity management firm Okta.

I also just learned that CNN has put up a paywall.

Oh, god damn. Last month they were like “Oh, it’s only a tiny number of accounts”… now it’s everyone.

And, this was on top of them being hacked LAST YEAR as well.

Insane numbers and this is just one company.

JPMorgan Chase now fights off about 45 billion attempts a day by hackers to infiltrate its systems. That’s double what it was last year, highlighting the escalating cybersecurity challenges the bank and other Wall Street titans are facing.

JPMorgan Chase, the largest US bank by assets, now invests $15 billion a year and employs 62,000 technologists to fortify its defense against cyber crimes, said Mary Callahan Erdoes, head of JPMorgan Chase’s asset and wealth management division, at the World Economic Forum in Davos, Switzerland, on Wednesday

It'd really be cool if someone in the government did something about this issue, which mostly comes from state sponsored groups in China and Russia. I guess they're too busy letting people break the law at the border?

Leisher wrote: ↑Wed Jan 17, 2024 4:46 pm JPMorgan Chase, the largest US bank by assets, now invests $15 billion a year and employs 62,000 technologists to fortify its defense against cyber crimes,

Those numbers are insane.

I can't even imagine what 62k people are doing, unless it's literally brute-forcing security, each of them examining 10 lines of communication per minute, or something like that.

GORDON wrote: ↑Wed Jan 17, 2024 9:07 pm I can't even imagine what 62k people are doing, unless it's literally brute-forcing security, each of them examining 10 lines of communication per minute, or something like that.

The company hired more than 5,000 software developers and data scientists last year and plans to add more at a time when some technology giants and fintechs are hitting the brakes on investment. At JPMorgan (JPM), about 20% of the bank's ~278K workforce is tech workers, Reuters said.Sep 30, 2022

Yeah, that seems like they're counting EVERY tech employee that they have. Which, ok, I'll buy that number, but those aren't security specialists each and every one.

Considering normal users are the "last line of defense" and the biggest vulnerability, I'd say they might even count in that 62K.

Venmo and other such app thefts are "skyrocketing".

Interesting that thieves are adapting and know you don't carry cash so they're forcing you to transfer money from your apps.

Leisher wrote: ↑Wed Jan 24, 2024 4:28 pm Venmo and other such app thefts are "skyrocketing".

Interesting that thieves are adapting and know you don't carry cash so they're forcing you to transfer money from your apps.

It's pretty absurd how easy this stuff is. Borrowing drunk people's phones, holding them up, instead of needing to take them to an ATM, etc. It's ridiculous.

I've deleted all the apps from my phones. Only use them from my laptop. Ostensibly, the thief might know that I can login to them via my browser, but hopefully not.

Holy shit...

You know those scam emails that pretend to be from someone high up in your company and tell you to transfer money? Someone just took it up a notch.

First of its kind scam.

Leisher wrote: ↑Fri Feb 09, 2024 12:20 am First of its kind scam.

To be fair, all Asians look alike.

US Government offers $10M reward for IDs of hackers attacking hospitals.

This is why I know the world isn't full of skilled hackers the way Hollywood portrays. It's also how I know groups like Anonymous aren't out to "help people" as they claimed.

This is free money and a chance to actually help real people. These fucks actually shut down a children's hospital.

So I'm standing here (I never sit at work) reading a security briefing put out by basically all the government agencies. It was released Feb 7th.

The title is:

PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure

They're discussing hackers, sponsored by the Chinese government, hacking and threatening infrastructure here in the U.S. The warning level is dire, extreme, or whatever you want to call it.

Someone PLEASE explain to me how this isn't an act of war. Why are our bureaucrats sitting on their hands? Why is this not being discussed endlessly by the MSM?

Our government has a massive technology problem that is spread throughout the nation and they aren't doing shit about it. Again, the response should be akin to what they did to address Y2K.

I remember reading about it 2 weeks ago in the MSM: https://www.cnn.com/2024/02/01/politics ... index.html

But yeah, "Biden old" and "Trump criminal" dominates.

TheCatt wrote: ↑Wed Feb 14, 2024 10:34 am I remember reading about it 2 weeks ago in the MSM: https://www.cnn.com/2024/02/01/politics ... index.html

I think we discussed it here, but I'm only now reading the actual release itself.

Our country is really not run very well at any level.